China APT

Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch

China APT, exploited, Malware & Threats, Microsoft, SharePoint, ToolShell, Zero-Day /

Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch 2025-07-22 at 20:47 By Eduard Kovacs Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days. The post Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch appeared first on SecurityWeek. This article is an excerpt […]

React to this headline:

Loading spinner

Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch Read More »

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

China, China APT, exploited, Featured, Malware & Threats, SharePoint, ToolShell, Vulnerabilities, Zero-Day /

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets 2025-07-22 at 11:44 By Eduard Kovacs More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities. The post ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets appeared first on SecurityWeek.

React to this headline:

Loading spinner

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets Read More »

China’s Salt Typhoon Hacked US National Guard

China, China APT, Featured, Government, Nation-State, National Guard, Salt Typhoon /

China’s Salt Typhoon Hacked US National Guard 2025-07-16 at 12:25 By Ionut Arghire Chinese hacking group Salt Typhoon targeted a National Guard unit’s network and tapped into communications with other units. The post China’s Salt Typhoon Hacked US National Guard appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

China’s Salt Typhoon Hacked US National Guard Read More »

Chinese Hackers Target Chinese Users With RAT, Rootkit

APT, China, China APT, Malware, Malware & Threats, Silver Fox /

Chinese Hackers Target Chinese Users With RAT, Rootkit 2025-06-27 at 13:02 By Ionut Arghire China-linked Silver Fox hacking group is targeting Chinese users with fake installers carrying a RAT and a rootkit. The post Chinese Hackers Target Chinese Users With RAT, Rootkit appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Chinese Hackers Target Chinese Users With RAT, Rootkit Read More »

Chinese APT Hacking Routers to Build Espionage Infrastructure

APT, China APT, cyberespionage, espionage, LapDogs, Malware, Nation-State, ShortLeash /

Chinese APT Hacking Routers to Build Espionage Infrastructure 2025-06-24 at 13:15 By Ionut Arghire A Chinese APT has been infecting SOHO routers with the ShortLeash backdoor to build stealthy espionage infrastructure. The post Chinese APT Hacking Routers to Build Espionage Infrastructure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Chinese APT Hacking Routers to Build Espionage Infrastructure Read More »

Fog Ransomware Attack Employs Unusual Tools

APT, China, China APT, Fog, Ransomware /

Fog Ransomware Attack Employs Unusual Tools 2025-06-13 at 13:20 By Ionut Arghire Multiple legitimate, unusual tools were used in a Fog ransomware attack, including one employed by Chinese hacking group APT41. The post Fog Ransomware Attack Employs Unusual Tools appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Fog Ransomware Attack Employs Unusual Tools Read More »

Chinese Hackers Hit Drone Sector in Supply Chain Attacks

China APT, drone, Featured, Nation-State, supply chain, Supply Chain Security /

Chinese Hackers Hit Drone Sector in Supply Chain Attacks 2025-05-15 at 14:39 By Ionut Arghire The China-linked hacking group Earth Ammit has launched multi-wave attacks in Taiwan and South Korea to disrupt the drone sector. The post Chinese Hackers Hit Drone Sector in Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chinese Hackers Hit Drone Sector in Supply Chain Attacks Read More »

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws

China APT, exploited, Malware & Threats, Ransomware, SAP /

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws 2025-05-15 at 13:48 By Ionut Arghire Two ransomware groups and several Chinese APTs have been exploiting two recent SAP NetWeaver vulnerabilities. The post Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws Read More »

Chinese APT Weaver Ant Targeting Telecom Providers in Asia

APT, China APT, Malware & Threats, telecoms, Weaver Ant /

Chinese APT Weaver Ant Targeting Telecom Providers in Asia 2025-03-25 at 13:54 By Ionut Arghire Weaver Ant, a cyberespionage-focused APT operating out of China, is targeting telecom providers for persistent access. The post Chinese APT Weaver Ant Targeting Telecom Providers in Asia appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Chinese APT Weaver Ant Targeting Telecom Providers in Asia Read More »

Chinese Hacking Group MirrorFace Targeting Europe

China APT, Europe, Malware & Threats, MirrorFace /

Chinese Hacking Group MirrorFace Targeting Europe 2025-03-19 at 15:05 By Ionut Arghire Chinese hacking group MirrorFace has targeted a Central European diplomatic institute with the Anel backdoor and AsyncRAT. The post Chinese Hacking Group MirrorFace Targeting Europe appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Chinese Hacking Group MirrorFace Targeting Europe Read More »

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines

APT41, China APT, cybercrime, Malware & Threats, Nation-State, PlugX, Ransomware, Shadowpad, Symantec, Trend Micro /

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines 2025-02-20 at 19:29 By Ryan Naraine China-linked cyberespionage toolkits are popping up in ransomware attacks, forcing defenders to rethink how they combat state-backed hackers. The post Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines Read More »

China-Linked Hackers Target Drone Makers

China APT, drone, Nation-State, Taiwan /

China-Linked Hackers Target Drone Makers 2024-09-10 at 15:16 By Ionut Arghire A Chinese-speaking threat actor tracked as Tidrone has been targeting military and satellite industries in Taiwan. The post China-Linked Hackers Target Drone Makers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

China-Linked Hackers Target Drone Makers Read More »

Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day

Black Lotus Labs, China APT, Cyberwarfare, Featured, KV Botnet, Nation-State, Versa Director, Volt Typhoon /

Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day 2024-08-26 at 21:17 By Ryan Naraine Malware hunters catch Chinese APT Volt Typhoon exploiting a zero-day in Versa Director servers used by ISPs and MSPs. The post Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day Read More »

Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning

China APT, DNS, Malware & Threats, StormBamboo /

Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning 2024-08-05 at 16:47 By Eduard Kovacs Chinese group StormBamboo spotted delivering Windows and macOS malware by compromising an ISP and using DNS poisoning. The post Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning Read More »

Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns

APT41, China APT, Cyberwarfare, Malware & Threats, Mandiant, Nation-State, Winnti /

Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns 2024-07-18 at 22:01 By Ryan Naraine Chinese government-backed hacking team caught breaking into organizations in shipping, logistics and automotive sectors in Europe and Asia. The post Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns Read More »

Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity Firm Says

China, China APT, Nation-State, Taiwan /

Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity Firm Says 2024-06-24 at 22:16 By Associated Press A suspected Chinese state-sponsored hacking group has stepped up its targeting of Taiwanese organizations, particularly those in sectors such as government, education, technology and diplomacy. The post Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity

React to this headline:

Loading spinner

Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity Firm Says Read More »

Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country

China APT, Malware, Malware & Threats /

Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country 2024-06-20 at 19:01 By Ionut Arghire A years-long espionage campaign has targeted telecoms companies in Asia with tools associated with Chinese groups. The post Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country Read More »

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

China APT, F5, Malware & Threats /

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence 2024-06-18 at 19:45 By Ionut Arghire China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network. The post Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence Read More »

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years

China APT, Malware & Threats /

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years 2024-06-06 at 14:46 By Ionut Arghire Multiple Chinese state-sponsored groups have targeted a Southeast Asian government in a years-long cyberespionage campaign. The post Multiple Chinese APTs Targeted Southeast Asian Government for Two Years appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years Read More »

VMware Abused in Recent MITRE Hack for Persistence, Evasion

China APT, Incident Response, MITRE, VMWare /

VMware Abused in Recent MITRE Hack for Persistence, Evasion 2024-05-23 at 17:16 By Eduard Kovacs MITRE has shared information on how China-linked hackers abused VMware for persistence and detection evasion in the recent hack. The post VMware Abused in Recent MITRE Hack for Persistence, Evasion appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

VMware Abused in Recent MITRE Hack for Persistence, Evasion Read More »

Scroll to Top